Support from the community to continue maintaining and improving this module is welcome. If you find the module useful, please consider supporting the project by becoming a sponsor.
▸ validateDetachedSignatureResponse(as, client, parameters, expectedNonce, expectedState?, maxAge?, options?): Promise<URLSearchParams>
Same as validateAuthResponse but for FAPI 1.0 Advanced Detached Signature authorization responses.
| Parameter | Type | Description |
|---|---|---|
as |
AuthorizationServer |
Authorization Server Metadata. |
client |
Client |
Client Metadata. |
parameters |
URLSearchParams | Request | URL |
Authorization Response parameters as URLSearchParams, instance of URL with parameters in a fragment/hash, or a form_post Request instance. |
expectedNonce |
string |
Expected ID Token nonce claim value. |
expectedState? |
string | typeof expectNoState |
Expected state parameter value. Default is expectNoState. |
maxAge? |
number | typeof skipAuthTimeCheck |
ID Token auth_time claim value will be checked to be present and conform to the maxAge value. Use of this option is required if you sent a max_age parameter in an authorization request. Default is client.default_max_age and falls back to skipAuthTimeCheck. |
options? |
ValidateSignatureOptions & JWEDecryptOptions |
- |
Validated Authorization Response parameters. Authorization Error Responses are rejected using AuthorizationResponseError.